RSS   Vulnerabilities for 'Sentrifugo'   RSS

2019-09-04
 
CVE-2019-15814

CWE-79
 
 
Multiple stored XSS vulnerabilities in Sentrifugo 3.2 could allow authenticated users to inject arbitrary web script or HTML.

 
 
CVE-2019-15813

CWE-94
 
 
Multiple file upload restriction bypass vulnerabilities in Sentrifugo 3.2 could allow authenticated users to execute arbitrary code via a webshell.

 
2018-08-28
 
CVE-2018-15873

CWE-89
 
 
A SQL Injection issue was discovered in Sentrifugo 3.2 via the deptid parameter.

 

Copyright 2024, cxsecurity.com

 

Back to Top